Phishing - from bad to worse

As usual, I got this email at my hotmail account saying that I have message from another eBay member. Even though I knew that this was “one more” of those phishing mails, just out of curiosity I opened the mail. The mail was one of the most authentic looking mails!. Anyway, the reason why I am writing this here is, this particular phishing attack is the new variant and is one the the smartest one that I have seen. No doubt that the phishers are using newer and newer techniques to fool the users.

On clicking the button provided in the mail (Yes. no link., but a graphic button), I was taken to a site which look like the original eBay site. Check the screen shot given below (click to enlarge).

What is new here is, this site has a DHTML layer with a proper E-Bay URL (text). For some reasons, the placement DHTML layer is not very proper in my case or else, it would have perfectly placed over the actual URL.

Also, if you look at the enlarged image, it also tries to convince the user that this is a true eBay site by giving some “Account Protection Tips”

So, keep a watch next time you come across something like this!

3 comments | April 13th, 2005 at 09:39pm